Appl. No. 09/576,516 PATENT 
Amdt. dated October 26, 2005 

Amendment under 37 CFR 1.116 Expedited Procedure 
Examining Group 2131 

Amendments to the Claims: 

This listing of claims will replace all prior versions, and listings, of claims in the application: 
Listing of Claims: 

1 . (Currently amended) A method of providing varying levels of security in 
a data processing system, the method comprising: 

receiving information from an outside source; 

retrieving a» a first indicator from the received information that instructs the 
system to operate at a higher level of security; 

receiving further information from said outside source; 

retrieving a separate second indicator from said further information received 
from said outside source[;1 , the second indicator for instructing the system to operate at a 
lower level of security than the higher level of security instructed by the first indicator; and 

preventing operation at [a]the lower level of security until a decrease in security 
levels is indicated by said second indicator; while 

continuing operation of said processing system. 

2. (Previously presented) The method of claim 1 wherein said receiving 
further information comprises: 

receiving an encrypted message, said encrypted message comprising a Decreased- 
Security- Authorization-Code to authorize said decrease in security levels. 

3. (Original) The method of claim 2 wherein said Decreased-Security- 
Authorization-Code authorizes a decrease in encryption/decryption levels. 

4. (Original) The method of claim 2 wherein said Decreased-Security- 
Authorization-Code authorizes a decrease in authentication level. 
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5. (Original) The method of claim 2 wherein said Decreased-Security- 
Authorization-Code authorizes a decrease in authentication level and a decrease in 
encryption/decryption levels. 

6. (Original) The method of claim 2 wherein said encrypted message further 
comprises a key for use in a decryption algorithm. 

f 

7. (Original) The method of claim 6 wherein said system stores a master key to 
decrypt messages comprising new decryption key values and further comprising: 

using said master key stored at said system to decrypt said encrypted message. 

8. (Original) The method of claim 1 and further comprising: 

establishing a Security-Level-Status-Indicator at said system to indicate a level of 
security that is being implemented by the system. 

9. (Original) The method of claim 8 wherein said Security- Level-Status- 
Indicator indicates a level of encryption/decryption that is being implemented by the system 

10. (Original) The method of claim 8 wherein said Security- Level-Status- 
Indicator indicates a level of authentication that is being implemented by the system. 

11. (Original) The method of claim 8 wherein said Security-Level-Status- 
Indicator indicates a level of authentication and a level of encryption/decryption that is being 
implemented by the system. 

12. (Original) The method of claim 8 and further comprising: 
configuring said Security Level Status Indicator to indicate more than two 

security levels so as to allow said system to utilize more than two security levels. 

13. (Currently amended) The method of claim 1 and further comprising: 
utilizing a cable head-end as said outside sourceM ; and 
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utilizing a set-top box in order to retrieve the first and second indicators 
from the information received from the cable head-end. 

14. (Original) The method of claim 2 and further comprising using a Key 
Management Message to convey said Decreased Security Authorization Code. 

15. (Original) The method of claim 14 wherein delivery of said Key Management 
Message is authenticated 

16. (Original) The method of claim 14 wherein delivery of said Key Management 
Message is protected against a replay attack. 

17. (Original) The method of claim 14 wherein delivery of said Key Management 
Message is authenticated and protected against a replay attack. 

18. (Original) The method of claim 1 wherein a lower level of security is non- 
public Key mode, wherein a higher level of security is a public Key mode, the method further 
comprising: 

continuing operation of the system in the public Key mode until an encrypted 
predefined message is received by the system from the outside source. 

19. (Original) The method of claim 18 wherein said system stores a master key to 
decrypt messages comprising new decryption key values and further comprising: 

using said master key stored at said system to decrypt said encrypted message. 

20. (Currently amended) A method of providing a secure transition between 
security levels in a data processing system, the data processing system having at least a high 
level of security and a low level of security for operation, the method comprising: 

using the system to receive information from an outside source; 
operating the system at the high level of securit y in response to a first security 
message in the information from the outside source ; 



Page 4 of 1 1 



Appl. No. 09/576,5 16 PATENT 
Amdt. dated October 26, 2005 

Amendment under 37 CFR 1.116 Expedited Procedure 
Examining Group 2131 

continuing operation of the system at the high level of security until an encrypted^ 
second authorization message is received by the system from the outside source authorizing a 
switch to a different level of securit y, the second authorization message being separate from 
the first security message . 

2 1 . (Currently amended) A cryptographic device comprising: 
an input to receive a datastream originated by a sending party; 

a Security-Level-Status-Indicator; 

code means for executing a cryptographic algorithm wherein said cryptographic 
algorithm is indicated by said Security- Level-Status-Indicator; and 

code means for decrypting a Decreased Security Authorization Code originated 
by said sending part y, wherein said Decreased Security Authorization Code is separate from 
said Decreased Security Authorization Code . 

22. (Original) The device as described in claim 21 wherein said code means for 
executing a cryptographic algorithm comprises code means for executing a high level 
cryptographic algorithm and code means for executing a low level cryptographic algorithm 
relative to said high level cryptographic algorithm. 

23. (Original) The device of claim 22 wherein said high level cryptographic 
algorithm comprises a high level decryption algorithm and wherein said low level cryptographic 
algorithm comprises a low level decryption algorithm. 

24. (Original) The device of claim 22 wherein said high level cryptographic 
algorithm comprises a high level authentication algorithm and wherein said low levef 
cryptographic algorithm comprises a low level authentication algorithm. 

25. (Original) The device of claim 22 wherein said high level cryptographic 
algorithm comprises a high level decryption algorithm and a high level authentication algorithm 
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and wherein said low level cryptographic algorithm comprises a low level decryption algorithm 
and a low level authentication algorithm. 

26. (Original) The device as described in claim 22 wherein said high level 
cryptographic algorithm is a public Key encryption algorithm and wherein said low level 
cryptographic algorithm is a non-public Key encryption algorithm. 

27. (Canceled) 

28. (Previously presented) The device as described in claim 21 and further 
comprising code means for preventing a replay attack in delivery of said Decreased-Security- 
Authorization-Code. 

29. (Previously presented) The device as described in claim 21 and further 
comprising a master key to use in decrypting said Decreased Security Authorization Code. 

30. (Original) The device as described in claim 21 wherein said Security Level 
Status Indicator is encrypted. 

3 1 . (Currently amended) A method of processing data comprising: 
providing a receiver to receive a transmission; 

establishing a Security- Level-Status-Indicator at said receiver in response to the 

transmission ; 

establishing a first level of decryption at said receiver; 
encrypting a first message at a sender at a first level of encryption; 
transmitting said first message to said receiver at said first level of encryption; 
receiving said first message at said receiver; 

decrypting said first message encrypted at said first level of encryption; 
transmitting from said sender a Decreased-Security- Authorization Code to change 
from said first level of decryption to a second level of decryption , said Decreased-Securitv- 
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Authorization Code being separate from the transmission in response to which the 
Security-Level-Status-Indicator is established ; 

receiving said Decreased-Security- Authorization-Code; 

determining a change in encryption level from said first level of encryption to said 
second level of encryption; 

adjusting said Security-Level-Status-Indicator at said receiver; 
encrypting a second message at said second level of encryption; 
transmitting said second message at said second level of encryption; 
receiving said second message at said receiver; and 
decrypting said second message at said receiver. 

32. (Currently amended) An apparatus for processing data comprising: 
a receiver to receive a transmission; 
a Security-Level-Status-Indicator stored in said receiver; 
first decryption code stored in said receiver for use in decrypting said 
transmission when encrypted at a first encryption level; 

a transmitter to transmit said transmission; 

first encryption code stored in said transmitter to encrypt a message at said first 
encryption level; 

code means for transmitting a Decreased-Security- Authorization-Code from said 
transmitter to said receiver so as to change from said first level of encryption to a second level of 
encryption , the Decreased-Securitv-Authorization-Code being separate from said 
transmission in response to which the Security-Level-Status-Indicator is stored in said 
receiver ; 

second decryption code stored in said receiver for use in decrypting said 
transmission when encrypted at said second level of encryption; and 

second encryption code stored in said transmitter to encrypt at said second 
encryption level. 
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